Overview

File _patchinfo of Package patchinfo.1046

<patchinfo incident="1046">
  <issue id="943969" tracker="bnc">VUL-0: CVE-2015-5200: libvdpau: vulnerability in trace functionality</issue>
  <issue id="943968" tracker="bnc">VUL-0: CVE-2015-5199: libvdpau: directory traversal in dlopen</issue>
  <issue id="943967" tracker="bnc">VUL-0: CVE-2015-5198: libvdpau: incorrect check for security transition</issue>
  <issue id="CVE-2015-5198" tracker="cve" />
  <issue id="CVE-2015-5199" tracker="cve" />
  <issue id="CVE-2015-5200" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>sndirsch</packager>
  <description>
libvdpau was updated to use secure_getenv() instead of getenv() for several variables
so it can be more safely used in setuid applications.

* CVE-2015-5198: libvdpau: incorrect check for security transition (bnc#943967)
* CVE-2015-5199: libvdpau: directory traversal in dlopen (bnc#943968)
* CVE-2015-5200: libvdpau: vulnerability in trace functionality (bnc#943969)
</description>
  <summary>Security update for libvdpau</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places